Overview
View and manage security vulnerabilities detected across your APIs and services.
Last updated
View and manage security vulnerabilities detected across your APIs and services.
Last updated
Issues are identified security vulnerabilities or potential threats within your API infrastructure. They represent areas of concern that may compromise the security, functionality, or compliance of your APIs. Issues are categorized by severity and type, providing a comprehensive view of your API's security posture.
Akto automatically detects and categorizes issues across your API inventory, allowing you to view and manage them efficiently. By examining issues, you gain detailed insights into potential security risks and their impact on your API ecosystem.
This includes details of severity levels, affected endpoints, and issue categories, which show how vulnerabilities may affect your API's security. You can also identify sensitive information exposure, potential attack vectors, and other security concerns, ensuring they are addressed promptly.
The Issues page provides a list of detected vulnerabilities. Each issue entry typically includes:
Issue name and description
Severity level (Critical, High, Medium, Low)
Affected API endpoint
Discovery time
Issue category
When you select an issue, you can view more detailed information such as:
Full description of the vulnerability
Potential impact on your system
Tags (e.g., OWASP Top 10, HackerOne Top 10)
CWE (Common Weakness Enumeration) references
List of all affected API endpoints
External references for further reading and remediation guidance
You can also take actions on issues such as creating Jira tickets, marking as false positives, or indicating acceptable risks. The Issues page includes filtering options to help you sort and manage vulnerabilities effectively.